Data Permissions

This page describes two ways to work with data-level permissions in Casbin: using implicit role/permission queries and using batch enforcement.

1. Implicit roles and permissions

When users get roles or permissions through the RBAC hierarchy (not only by direct policy rules), those are implicit. Use GetImplicitRolesForUser() and GetImplicitPermissionsForUser() to include them; GetRolesForUser() and GetPermissionsForUser() return only direct assignments. See GitHub #137.

2. BatchEnforce()

BatchEnforce() runs many access checks in one call and returns a slice of booleans. Use it to filter or validate data sets efficiently.

Example:

boolArray, err := e.BatchEnforce(requests)

const boolArray = await e.batchEnforce(requests);

List<Boolean> boolArray = e.batchEnforce(requests);

1. Implicit roles and permissions​

2. BatchEnforce()​

1. Implicit roles and permissions

2. BatchEnforce()